Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.chinese-beauty.net/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.chinese-beauty.net Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Tue, 23 Sep 2014 18:29:28 GMT Pragma: no-cache Location: http://url.cn/1XMTZu Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Vary: Accept-Encoding,User-Agent Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=9913eaf2e7b153b45c4ef90462b5dda3; path=/ X-Powered-By: PHP/5.2.16 | malicious |
URL: http://url.cn/1XMTZu (imitation of visitor from search engine) GET /1XMTZu HTTP/1.1 Host: url.cn Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate Connection: close Date: Tue, 23 Sep 2014 18:29:30 GMT Pragma: no-cache Location: http://www.robedumariage.org Server: QZHTTP-2.38.18 Content-Length: 0 Content-Type: text/html; charset=gb2312 | malicious |
Scanned pages/files
Request | Server response | Status |
http://www.chinese-beauty.net/ | 200 OK Content-Length: 15719 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21412 Content-Type: text/javascript | clean |
http://www.statcounter.com/counter/counter.js | 200 OK Content-Length: 15530 Content-Type: application/x-javascript | clean |
http://pagead2.googlesyndication.com/pagead/iclk?sa=l&ai=BWzmWLOdgRoOoAYGauQPI7PCJCJDmoSjQhN3jAsCNtwHAqQcQChgKIMqU9AgoCjgAUPKgw63______wFgwQWQAQKYAYjU9r8BoAGauY3_A7IBCGNjb2YuYml6ugEIZnBfYWxfbHDIAQHaARBodHRwOi8vY2NvZi5iaXov4AECyALcnIkBqAMBuAMByAMH6AP7AegDdvUDAgAAAA&num=10&adurl=http://www.allbusiness.com/2984945-1.html%3Fpath%3D%252Fdirectory%252F%252Findustrial_goods_and_services%252Findustrial_su <span>...130 symbols skipped</span> | 404 Not Found Content-Length: 0 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://www.chinese-beauty.net//www.google.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=172800 Connection: close Date: Tue, 23 Sep 2014 18:29:33 GMT Location: http://www.oasiland.com//newesnew/public_html/index.php Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 449 Content-Type: text/html; charset=iso-8859-1 Expires: Thu, 25 Sep 2014 18:29:33 GMT | clean |
http://www.oasiland.com//newesnew/public_html/index.php/ | 200 OK Content-Length: 29092 Content-Type: text/html | clean |
http://www.oasiland.com/js/jquery/jquery.js | 200 OK Content-Length: 93867 Content-Type: application/javascript | clean |
http://www.oasiland.com/js/prototype/prototype.js | 200 OK Content-Length: 129960 Content-Type: application/javascript | clean |
http://www.oasiland.com/js/lib/ccard.js | 200 OK Content-Length: 747 Content-Type: application/javascript | clean |
http://www.oasiland.com/js/prototype/validation.js | 200 OK Content-Length: 37422 Content-Type: application/javascript | clean |
http://www.oasiland.com/js/scriptaculous/builder.js | 200 OK Content-Length: 4744 Content-Type: application/javascript | clean |
http://www.oasiland.com/js/scriptaculous/effects.js | 200 OK Content-Length: 38745 Content-Type: application/javascript | clean |
http://www.oasiland.com/js/scriptaculous/dragdrop.js | 200 OK Content-Length: 31192 Content-Type: application/javascript | clean |
http://www.oasiland.com/js/scriptaculous/controls.js | 200 OK Content-Length: 34797 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=chinese-beauty.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://chinese-beauty.net/
Result: chinese-beauty.net is not infected or malware details are not published yet.
Result: chinese-beauty.net is not infected or malware details are not published yet.